:: Deepquest ::

Online Polling System from sourcecodester.com suffers from a remote SQL injection vulnerability that allows for authentication bypass.

User Registration and Login and User Management System with admin panel version 2.1 suffers from multiple remote SQL injection vulnerabilities. One allows for authentication bypass.

Small CRM version 2.0 suffers from a remote SQL injection vulnerability. This version was first discovered to have a different SQL injection vulnerability in January of 2020 by FULLSHADE.

Curfew e-Pass Management System version 1.0 suffers from a remote SQL injection vulnerability.

Online Birth Certificate System version 1.0 suffers from a remote SQL injection vulnerability that allows for remote code execution.

Trend Micro Web Security Virtual Appliance 6.5 SP2 Patch 4 Build 1901 – Remote Code Execution (Metasploit)

BSA Radar 1.6.7234.24750 – Local File Inclusion

Responsive Online Blog version 1.0 remote SQL injection proof of concept exploit. Original discovery of the vulnerability is attributed to Eren Simsek.

Liferay Portal versions prior to 7.2.1 CE GA2 exploit that gains code execution due to deserialization of untrusted data sent to the JSON web services interface.

Online DJ Booking Management System Project Report version 1.0 remote SQL injection exploit that achieves code execution.